• jeffw@lemmy.worldOP
    link
    fedilink
    English
    arrow-up
    3
    ·
    2 months ago

    Different security step.

    In March 2023, the TSA added a cybersecurity emergency amendment to its cybersecurity programs. The amendment required airlines like Delta to develop “policies and controls to ensure that operational technology systems can continue to safely operate in the event that an information technology system has been compromised,” CrowdStrike’s complaint said.

    • jaybone@lemmy.world
      link
      fedilink
      English
      arrow-up
      2
      ·
      2 months ago

      Yeah I read it. So is CrowdStrike going to argue that some other software update was supposed to have been installed by Delta prior to CrowdStrike’s update?

      That’s my question.

      • Pika
        link
        fedilink
        English
        arrow-up
        4
        ·
        edit-2
        2 months ago

        No they are going to argue that there should have been a fail safe in place for a rapid recovery of said incident occurring in the first place. Since the TSA required it

        I personally don’t think that should resolve crowdstrike of all responsibility, but the fact that they lack these contingency plans in the first place makes me think that CS is definitely not the only one at fault here